-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 14 Mar 2017 10:54:33 +0000 Source: mbedtls Binary: libmbedtls-dev libmbedcrypto0 libmbedtls10 libmbedx509-0 libmbedtls-doc Architecture: source Version: 2.4.2-1 Distribution: unstable Urgency: high Maintainer: James Cowgill <jcowgill@debian.org> Changed-By: James Cowgill <jcowgill@debian.org> Description: libmbedcrypto0 - lightweight crypto and SSL/TLS library - crypto library libmbedtls-dev - lightweight crypto and SSL/TLS library - development files libmbedtls-doc - lightweight crypto and SSL/TLS library - documentation libmbedtls10 - lightweight crypto and SSL/TLS library - tls library libmbedx509-0 - lightweight crypto and SSL/TLS library - x509 certificate library Closes: 857560 Changes: mbedtls (2.4.2-1) unstable; urgency=high . * New upstream version. - Fixes CVE-2017-2784 - freeing of memory allocated on the stack when validating a public key with a secp224k1 curve. (Closes: #857560) . * debian/rules: - Run testsuite inside faketime to prevent it suddenly failing in the future. Thanks Niels Thykier! Checksums-Sha1: 92d7df74397542a182796aedcbbc21ba7151981f 2177 mbedtls_2.4.2-1.dsc 71e0aa93e4548611fdb15af93e8b93b30c764e4c 1925368 mbedtls_2.4.2.orig.tar.gz 5756122ca8b76724c55c0c9277e41747b0e2aa94 10532 mbedtls_2.4.2-1.debian.tar.xz e6d928778b62a523db60e62299541ad4f53178d5 5644 mbedtls_2.4.2-1_source.buildinfo Checksums-Sha256: 465917e7740ca57dc9c1965663872a06de61744197c056a76a9fa3f4189f939c 2177 mbedtls_2.4.2-1.dsc 17dd98af7478aadacc480c7e4159e447353b5b2037c1b6d48ed4fd157fb1b018 1925368 mbedtls_2.4.2.orig.tar.gz 009f1f2f0874524170fccf9d767f067e209316a509a18e31f8d5d0bd637e58bf 10532 mbedtls_2.4.2-1.debian.tar.xz 202a3a27376159303253cc980e1dc803b84338e38d3acc519c2f1c90af54d993 5644 mbedtls_2.4.2-1_source.buildinfo Files: 632b8afdf2136f9f63b8fa22fa35c391 2177 libs optional mbedtls_2.4.2-1.dsc 8e3a8357e0fc23a3954a819027f5167e 1925368 libs optional mbedtls_2.4.2.orig.tar.gz 8dbbeb68abf39fb4165b0701f46a55f5 10532 libs optional mbedtls_2.4.2-1.debian.tar.xz e2f2bca2c245ed97a524e748cca8e1cc 5644 libs optional mbedtls_2.4.2-1_source.buildinfo -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJYx8zcAAoJEMfxZ23qLQHv588P/1rgUlG/fbVB5EgmFFkD/WhG M4L/gCgZz60DaF8cFEq1tbw3YT1Ak3cmnFGD14HqH3XnGINydW3LHfhIgkFtLSfe PDrobB3Y3MXKwd+vXaSz78bggqQDP9DUWvj1Dxw5rSYl/vgeoA7ErQGFTL6qDzPc 7EdaDle1wfjqQZIq6B6o4sV5NAABKNWyWNZRRvmsx4GjdiSUmBXiyOpzDbfEMbCZ UrX8WKdSt5v8olhp1T7G7CD82/i142x20ubfpTZpSDDUoVg5bWKcThWsMJxJji9j vTigALcXMY6IwhcFOc6xqU1Sbb+NIKNjTNW+Wl5UhhyZCRHkRqFhsA42PcwaVTSj yScJYZGj/HA812KCboWWqahvZInkDYwkq3e7Xy6NgVHMXG98a2bXodJ6mKPjejiq Yo7RVszes7kvJw78JQiNd0PVvDOEzz3pJRLGAQsDnRsAmb1fP2W3HBn94BufcZVq Rva39YR/5hfn+A3maYJyGJjXcMu7WGcOLwee06Y1v3v5KBHYhqY1aQfYfgtR674M rHZOE8ZxBVTDqPX0SbL/uS+gxMWIFdfXdVNv6eKwGm2DP7pEv8uWsTPFvfA1nqy4 3BCAaY7rBw+pdJMev0gpWejoTE2sFUR4SIiSDOk2YBIecNJnilioNnQL+hatPMaX GK6ClE6aST5inoJE1n84 =GMT6 -----END PGP SIGNATURE-----
